Security Operations Engineer

The primary role of the Cyber Security Operations Engineer is to deliver exceptional customer service while managing and maintaining our customer environments besides creating documentation around various processes and procedures.
As a Security Operations Engineer this role requires a good range of technical capabilities in line with technologies we manage for our customers as well as the ability to troubleshoot issues.

Responsibilities:

• Managing and Administration / Configuration of Security Solutions such as but not limited to any of the following – End Point Security – MS Defender, Trend Micro, CrowdStrike, SIEM – Rapid7, Sentinel, Vulnerability Management – Rapid7, Nessus, Qualys, IAM – CyberArk – Access, PAM, Security Awareness and Phishing Simulation – KnowBe4, Mimecast, Application Whitelisting solutions such as Airlock, and Microsoft Security.
• Provide 2nd level /03rd level technical support within our agreed SLA agreements.
• Adhere to Incident, Security, Problem and Change Management processes as per company/customer standards (ITIL Framework)
• Create and maintain technical documentation for company customer environments.
• Providing escalated support from service desk teams (escalated end user / NOC support) and customers.
• Create knowledgebase articles and process documents.
• To provide after hours on-call assistance and/or escalation on a rotating basis as required.
• Provide Security Solutions Administration and Incident Response along with driving the Vulnerability Management.
• Periodic customer meetings and presentations around operational Activities.
• Handling ITSM tools and various documentation repositories such as ServiceNow, Confluence etc.,
• Security Monitoring, Incident Response, Threat Management and driving Vulnerability Management Program for Customers.
• General Infrastructure and Network awareness.
• Working with OS such as Windows, Linux environments and basic Networking.

Requirements:

• Demonstrated experience with proven performance within Security Operations.
• Experience with Managing and Administration / Configuration of Security Solutions such as but not limited to any of the following – End Point Security, CrowdStrike, SIEM – Rapid7, Vulnerability Management – Rapid7, IAM – CyberArk – Access, PAM.
• Experience with Security Awareness and Phishing Simulation – KnowBe4, Mimecast, Application Whitelisting solutions such as Airlock, and Microsoft Security.
• Knowledge of ASD Essential 8, NIST or any other key security frameworks.
• Knowledge in handling ITSM tools and various documentation repositories such as ServiceNow, Confluence etc.,
• Experience within Security Monitoring, Incident Response, Threat Management and driving Vulnerability Management Program for Customers.
• General Infrastructure and Network awareness.
• Security Solutions Implementation, Operational experience
• Experience in being able to interact with Customers on regular basis.